<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title></title>
</head>
<body>
<div name="messageBodySection">Thank you.</div>
<div name="messageSignatureSection"><br>
----
<div>Regards,</div>
<div>Lei</div>
</div>
<div name="messageReplySection"><br>
On Feb 22, 2017, 11:09 PM -0600, Lan Wang (lanwang) <lanwang@memphis.edu>, wrote:<br>
<blockquote type="cite">Lei,
<div class=""><br class="">
</div>
<div class="">Just realized that the application development guide you are referring to was written in 2014 by Jeff Thompson and it is for NDN-CCL.  I suggest confirming with Jeff that this is up to date and if so clarify your questions with him first.  <br class="">
<div class="">
<div style="color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<div style="color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; border-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px;"></span>
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; border-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px;"></span>
<div class=""><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; border-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px;"><br class="Apple-interchange-newline">
Lan</span></div>
</div>
</div>
</div>
</div>
<br class="">
<div>
<blockquote type="cite" class="">
<div class="">On Feb 22, 2017, at 10:53 PM, Lei Pi (lpi) <<a href="mailto:lpi@memphis.edu" class="">lpi@memphis.edu</a>> wrote:</div>
<br class="Apple-interchange-newline">
<div class="">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
Hi Dr. Wang,<br class="">
<div class=""><br class="">
<blockquote type="cite" class="">
<div class="">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<div class="">
<div class="">How do you know "<span style="font-family: verdana, sans-serif;" class="">the recipient</span><span style="font-family: verdana, sans-serif;" class=""> </span>
<div class="gmail_default" style="font-family: verdana, sans-serif; display: inline;">
​should</div>
<span style="font-family: verdana, sans-serif;" class=""> check if the interest's signing key is finally signed by an</span><span style="font-family: verdana, sans-serif;" class=""> </span>
<div class="gmail_default" style="font-family: verdana, sans-serif; display: inline;">
​administrator's</div>
<span style="font-family: verdana, sans-serif;" class=""> signing key in order to reject unauthorized commands</span>
<div class="gmail_default" style="font-family: verdana, sans-serif; display: inline;">
​.​“?  What checking is needed depends on the trust model.  What’s the trust model here?</div>
</div>
</div>
</div>
</div>
</blockquote>
<div class="">Under specific scenarios whether the recipient should do the checking is up to the designer’s decision. I’m possibly wrong, but NFD is making decision for the recipients about which signing key the command interest is signed with should be trusted.
 Why isn’t that limiting the possibilities of designs? And why is that necessary? </div>
<br class="">
<blockquote type="cite" class="">
<div class="">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<div class="">
<div class="">
<blockquote type="cite" class="">
<div class="">
<div dir="ltr" class="">
<div class="gmail_quote">
<div dir="ltr" class="">
<div class="">
<div style="font-family:verdana,sans-serif" class=""><br class="">
</div>
<div style="font-family:verdana,sans-serif" class="">So what's the purpose of the NFD's default signing key? Why should the app use this key
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
​ to initialize its identity​</div>
? Note the NFD's default signing key is not signed by anyone
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
​[2].​</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
<div class=""><br class="">
</div>
The line you are referring to doesn’t seem to be relevant to "<span style="font-family: verdana, sans-serif;" class="">the NFD's default signing key is not signed by anyone</span>
<div class="gmail_default" style="font-family: verdana, sans-serif; display: inline;">
​“.</div>
</div>
</div>
</div>
</div>
</blockquote>
<div class="">The line is generating a new key and that key looks like a self-signed key or unsigned key. I believe this is what the article I was citing means. My question about this is in the next line. </div>
<br class="">
<blockquote type="cite" class="">
<div class="">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<div class="">
<div class="">
<blockquote type="cite" class="">
<div class="">
<div dir="ltr" class="">
<div class="gmail_quote">
<div dir="ltr" class="">
<div class="">
<div style="font-family:verdana,sans-serif" class=""><br class="">
</div>
<div style="font-family:verdana,sans-serif" class="">If it is also
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
​ for</div>
 defend
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
​ing​</div>
against unauthorized command interests, then any local app, including possible malwares, can also use this key to sign their interest by simply using the default keychain.</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
<div class=""><br class="">
</div>
The assumption is that local apps are trusted if they are allowed to run.  There needs to be checking before they are launched.  The secure launcher part is not implemented (or designed) yet.</div>
</div>
</div>
</div>
</blockquote>
<div class="">Then is it right to say that unless the secure launcher is a fully automatic one which makes no mistakes, the user will be involved in deciding trusted apps instead of the protocol or the service providers? </div>
<div class=""><br class="">
</div>
<div class="">I understand now it can be used to by default deny forwarding all remote command interests. </div>
<div class=""><br class="">
</div>
<div class="">Thank you. </div>
<br class="">
<blockquote type="cite" class="">
<div class="">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">
<div class="">
<div class=""><br class="">
</div>
<div class="">Lan</div>
<div class=""><br class="">
<blockquote type="cite" class="">
<div class="">
<div dir="ltr" class="">
<div class="gmail_quote">
<div dir="ltr" class="">
<div class="">
<div style="font-family:verdana,sans-serif" class="">If not, what other purpose could it be? <br class="">
</div>
<br class="">
</div>
<div class=""><br class="">
</div>
<div style="font-family:verdana,sans-serif" class="">​[1] <a href="https://redmine.named-data.net/projects/application-development-documentation-guides/wiki/Using_Client_Libraries_with_NDNx_vs_NDNx-TLV_vs_NFD#Using-registerPrefix-with-NFD" target="_blank" class="">
https://redmine.named-data.<wbr class="">net/projects/application-<wbr class="">development-documentation-<wbr class="">guides/wiki/Using_Client_<wbr class="">Libraries_with_NDNx_vs_NDNx-<wbr class="">TLV_vs_NFD#Using-<wbr class="">registerPrefix-with-NFD</a></div>
<div style="font-family:verdana,sans-serif" class="">
<div class="gmail_default" style="font-family:verdana,sans-serif">​[2] <a href="https://github.com/named-data/NFD/blob/master/tools/nfd-start.sh#L42" class="">
https://github.com/named-data/NFD/blob/master/tools/nfd-start.sh#L42</a> ​</div>
<br class="">
</div>
<div style="font-family:verdana,sans-serif" class="">​</div>
<div style="font-family:verdana,sans-serif" class=""><br class="">
</div>
<div style="font-family:verdana,sans-serif" class="">Thank you. <span style="color:rgb(136,136,136)" class="">​</span></div>
</div>
</div>
--<br class="">
<div class="gmail_signature">
<div dir="ltr" class="">
<div class="">
<div dir="ltr" class="">
<div class="">Regards,</div>
<div class="">Lei 
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
​Pi</div>
</div>
<div class="">
<div class="gmail_default" style="font-family:verdana,sans-serif;display:inline">
University of Memphis​</div>
</div>
</div>
</div>
</div>
</div>
</div>
_______________________________________________<br class="">
Ndn-interest mailing list<br class="">
<a href="mailto:Ndn-interest@lists.cs.ucla.edu" class="">Ndn-interest@lists.cs.ucla.edu</a><br class="">
<a href="http://www.lists.cs.ucla.edu/mailman/listinfo/ndn-interest" class="">http://www.lists.cs.ucla.edu/mailman/listinfo/ndn-interest</a><br class="">
</div>
</blockquote>
</div>
<br class="">
</div>
</div>
</div>
</blockquote>
</div>
<br class="">
</div>
</div>
</blockquote>
</div>
<br class="">
</div>
</blockquote>
</div>
</body>
</html>